🗃️
SolarWinds Security Incident
30/10/2023
693 days ago
Resolved
Incident Overview
Situation Description
The SEC is increasing enforcement actions against CISOs, exemplified by charges filed against the former CISO of SolarWinds following a significant cyber breach.
Event Types
Data Breach
Regulatory Enforcement
Industry Sector
TechnologyGeographic Scope
nanResponse Actions
Pursued Litigation
Paid Regulatory Fines or Legal Settlements
Impact Analysis
Event Types (2 identified)
Data Breach
Regulatory Enforcement
Financial Impact
$26,000,000 USDRecords Affected
0Data Types Compromised
Operational / System Data
Primary Impacts
Financial Loss
Reputational Damage
Legal/Regulatory Penalties
Key Decisions Made
The SEC filed charges against the former CISO of SolarWinds, Timothy G. Brown, alleging violations of securities laws and seeking penalties and an officer/director bar.; SolarWinds shareholders sued the company for securities fraud and settled for $26 million.; Companies should consider providing CISOs with personal indemnification agreements and ensuring they are covered by D&O insurance.
Technical Analysis
Attack Method
Unpatched Vulnerability
Vulnerability / Tool
SolarWinds Orion platform
Additional Information
Quick Facts
- Company:
- SolarWinds
- Date:
- 30/10/2023
- Status:
- Resolved
- Decision Maker:
- SEC
- Position:
- nan
- Published:
- 8/11/2023
Source Information
Original Query
Director and Officer (D&O) insurance premium trends after SEC cyber disclosure rulesTimeline
Information Published
8/11/2023
Incident Occurred
30/10/2023 (693 days ago)
Status: Resolved
Estimated resolution based on age